ACTIVE THREATS: Chrome zero-day CVE-2025-0971 under active exploitation — update immediately • CISA ED-25-02: Ivanti Connect Secure emergency directive issued • VoltZite ransomware targeting North American power grid operators ACTIVE THREATS: Chrome zero-day CVE-2025-0971 under active exploitation — update immediately • CISA ED-25-02: Ivanti Connect Secure emergency directive issued • VoltZite ransomware targeting North American power grid operators
Cybersecurity researchers have discovered five malicious Rust crates that masquerade as time-related utilities to transmit .env file data to the threat actors. The Rust packages, published to crates.io, are listed below - chrono_anchor dnp3times time_calibrator time_calibrators time-sync The crate
Cybersecurity researchers have discovered five malicious Rust crates that masquerade as time-related utilities to transmit .env file data to the threat actors.
The Rust packages, published to crates.io, are listed below -
chrono_anchor
dnp3times
time_calibrator
time_calibrators
time-sync
The crates, per Socket, impersonate timeapi.io and were published between late February and early March
Source attribution: via The Hacker News. HackWire aggregates and contextualizes publicly reported cybersecurity news for informational purposes.